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(54) DIGITAL SIGNATURE GENERATION SERVER 



(57)Abstract: 

PROBLEM TO BE SOLVED: To provide a digital signature system 
full of convenience for easily managing a secret key in a digital 
signature utilizing a public key cipher system. 
SOLUTION: Based on an 'ID' transmitted from a user, a dynamic 
signature cipher key management part 16 obtains registered 
dynamic signature data and the secret key from a management 
data base 12. The registered dynamic signature data and 
authentication dynamic signature data transmitted from the user 
are collated in a dynamic signature collation part 14. In the case of 
judging that both are the same signature data, the dynamic 
signature cipher key management part 16 supplies message data 
transmitted from the user and the secret key to a cipher 
computing part 18 and the cipher computing part 18 transmits the 
message data or the like ciphered by the secret key to the dynamic 
signature cipher key management part 16. The dynamic signature 
cipher key management part 16 sends back the ciphered, that is 
signed, message data or the like to the user. The user is not 
required to manage his own secret key by himself and the digital 
signature system full of the convenience is obtained. 




* NOTICES * 



JPO and INPIT are not responsible for any 
damages caused by the use of this translation. 

1 .This document has been translated by computer. So the translation may not reflect the original precisely. 
2.**** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 



CLAIMS 



[Claim(s)] 

[Claim 1]Message data which is an object of a digital signature characterized by comprising the following, A 
digital signature generation server which inputs an identifier of a user who demands said digital signature, 
signs said message data using said user's secret key, and outputs said message data after a signature. 
A secret key memory measure which is a memory measure into which said user's secret key was registered 
beforehand, and outputs a secret key in which said user was registered based on said user's identifier. 
A signature means which signs said message data using said secret key. 

[Claim 2]A digital signature generation server, wherein said secret key memory measure permits that the 
same secret key is memorized to a different user's identifier in the digital signature generation server 
according to claim 1. 

[Claim 3]A digital signature generation server, wherein said secret key memory measure permits that the 
same user owns two or more identifiers in the digital signature generation server according to claim 1. 
[Claim 4]It is the memory measure into which said user's living body signature data was beforehand 
registered in the digital signature generation server according to claim 1, 2, or 3, A living body signature 
data memory measure which outputs living body signature data in which said user was registered based on 
said user's identifier, An inspection means which inspects whether input living body signature data which 
said user inputs is compared with living body signature data in which said user whom said living body 
signature data memory measure outputted was registered, and both characteristic quantity is in agreement, 
A digital signature generation server using said acquired secret key and signing said message data only 
when it is judged that characteristic quantity of an implication and said signature means corresponds by 
said inspection means. 

[Claim 5]A digital signature generation server characterized by said living body signature data being data 

about a signature written by a user by hand in the digital signature generation server according to claim 4. 

[Claim 6]A digital signature generation server characterized by said living body signature data being data 

about said user's retina patterns in the digital signature generation server according to claim 4. 

[Claim 7]A digital signature generation server characterized by said living body signature data being data 

about said user's fingerprint in the digital signature generation server according to claim 4. 

[Claim 8]The digital signature generation server comprising according to claim 5: 

A conversion method from which said user who is said inputted living body signature data changes into 
image data data about a signature which wrote by hand. 

An image data signature means which signs to said image data using said secret key, and an image data 
output means which outputs said signed image data. 

[Claim 9]A digital signature generation server, wherein said secret key memory measure comprises an 
enternal memory means dismountable from this digital signature generation server in the digital signature 
generation server according to claim 1, 2, or 3. 

[Claim 10]A digital signature generation server, wherein said secret key memory measure comprises an 
enternal memory means dismountable from this digital signature generation server and said signature 



means is constituted by said enternal memory means and one in the digital signature generation server 
according to claim 1, 2, or 3. 

[Claim 11]A digital signature generation server, wherein said enternal memory means comprises an IC card 
in the digital signature generation server according to claim 10. 
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[Proposed Amendment] 
[Claim(s)] 

[Claim 1]A living body signature data memory measure which matches a user's registration living body 
signature data with the user's identifier, and memorizes it, 

A secret key memory measure which matches a user's secret key with the user's identifier, and memorizes 
it, 

An input means which receives a signature demand which contains input living body signature data which 
data for a digital signature, information, and a user of an identifier of a user of signature demand origin 
inputted dynamically from a user's unit , 

Registration living body signature data corresponding to a user-identification child contained in a signature 
demand from a user's unit received by said input means is acquired from said living body signature data 
memory measure, An inspection means which inspects whether both characteristic quantity is in agreement 
as compared with input living body signature data contained in the signature demand in acquired 
registration living body signature data , 



A signature means which gives a digital signature to message data which uses said acquired secret key and 
is contained in said signature demand when it is judged that characteristic quantity is in agreement by said 
inspection means, and replies the result to said user's unit , 
A digital signature generation server which **** , 

[Claim 2]In the digital signature generation server according to claim 1, 

A digital signature generation server, wherein said secret key memory measure permits that the same 

secret key is memorized to a different user's identifier. 

[Claim 3]In the digital signature generation server according to claim 1, 

A digital signature generation server, wherein said secret key memory measure permits that the same user 
owns two or more identifiers. 

[Claim 4]A digital signature generation server characterized by said living body signature data being data 
about a signature written by a user by hand in a digital signature generation server given in either Claim 1, 
2 or 3 . 

[Claim 5]A digital signature generation server characterized by said living body signature data being data 
about said user's retina patterns in a digital signature generation server given in either Claim 1, 2 or 3 . 
[Claim 6]A digital signature generation server characterized by said living body signature data being data 
about said user's fingerprint in a digital signature generation server given in either Claim 1, 2 or 3 . 
[Claim 7]In the digital signature generation server according to claim 4 , 

A conversion method from which said user who is said inputted living body signature data changes into 
image data data about a signature which wrote by hand, 

An image data signature means which signs to said image data using said secret key, 

An image data output means which matches said signed image data with said message data by which the 

digital signature was carried out, and replies it to said user's unit , 

****** — a digital signature generation server characterized by things. 

[Claim 8]In the digital signature generation server according to claim 1, 2, or 3, 

A digital signature generation server, wherein said secret key memory measure comprises an enternal 
memory means dismountable from this digital signature generation server. 
[Claim 9]In the digital signature generation server according to claim 1, 2, or 3, 

Said secret key memory measure comprises an enternal memory means dismountable from this digital 
signature generation server, 

A digital signature generation server, wherein said signature means is constituted by said enternal memory 
means and one. 

[Claim 10]In the digital signature generation server according to claim 9 , 

A digital signature generation server, wherein said enternal memory means comprises an IC card. 
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DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention]This invention relates to a public-key crypto system. It is related with attestation of 

the key in the case of performing a digital signature especially using a public-key crypto system. 

[0002] 

[Description of the Prior Art]In recent years, communication by a network develops and a cipher system is 
used for transmission and reception of the message on a network, etc. in many cases. Although the classic 
common key system is also used for the cipher system, a public-key crypto system is used from the 
Reasons of management of a key becoming complicated. 

[0003]In a public-key crypto system, everybody manage a self secret key secretly and open a self public 
key to others. And others encipher a message using a certain individual's public key, and send to the 
individual. Since only the individual who knows the secret key can decrypt the message enciphered by the 
public key, the contents of the message are kept secret to a third party. 

[0004]This public-key crypto system has the feature that what is called a digital signature can be 
performed easily. 

[0005]That is, when a certain shell performs a self signature about a predetermined message, it enciphers 
with the secret key of a shell to the message. The message enciphered with this secret key can be 
decrypted only by the public key of a shell. Therefore, anyone can decrypt the message by the public key 
of a shell, and can check the contents of the message of a basis. What can be decrypted by the public key 
of a shell is only the text enciphered with the secret key of the shell. Therefore, that it has decrypted by 
the public key of the shell means that surely the shell enciphered using the secret key of a shell to the 
message. And since only the shell knows the secret key of a shell, it is only a shell that such encryption 
can be performed. 

[0006]Thus, since others can check the processing which can perform only a shell, it can be regarded as a 
"signature" of a shell with this processing. 

[0007]Now, in public-key crypto systems including such a digital signature, only the owner needs to know 
the secret key. That is, an individual has to manage a secret key severely in individual responsibility. 
[0008]However, a 500 to about 1000-bit thing is used, or the length of the key used for the public-key 
crypto system used in recent years is proposed, in order to maintain encryption strength. 
[0009]If [ like the password of about several figures ], as for such data (500 bits or about 1000 bits), human 
being is not memorized easily at any rate. Then, generally saving the secret key of a public key system at 
the hard disk in a computer, or making it memorize in an IC card is made. 

[0010]However, when a secret key is stored in the hard disk in a computer, etc., anyone may be able to use 
the secret key. Therefore, protection according [ the secret key generally stored in the hard disk ] to a 
password is given in many cases. Namely, when using the secret key for a digital signature etc., the user 
will not be able to use the secret key without entering a password. 
[0011] 

[Problem(s) to be Solved by the Invention]In the conventional private key cryptosystem, in this way, the 
individual had to perform management of the secret key and protection of the secret key with a password 
etc. was specifically performed. 

[0012]However, since the password needs to be what human being tends to memorize, generally there are 
many short things and it is easier to touch others' eyes with it carelessly. And when eyes have once been 
touched, there is character to be easy to be memorized (since it is short). 

[0013]Thus, since storage of the conventional secret key was dependent on the intensity of the place 
password of a join office, there was a limit also in protection of a secret key naturally. As a result, a 
possibility of it being easy to cause what is called "spoofing" by a third party, and a third party turning into 
those who have the just right, clearing up, and performing a digital signature was not small, either. 



[0014]Management of the secret key is fundamentally left to the just user individual's management. 
Therefore, when using the "legal entity key" of as [ whose a legal entity is a user, for example ], the 
individual is managing the secret key after all. Therefore, regardless of the importance of a secret key, even 
if the key is an individual key and it is a key of a legal entity, it is managed only with the same degree of 
safe. 

[0015]As a result, the actual condition is that a possibility that an individual will use an important legal 
entity key unjustly inside a certain company hardly changes an individual key to a possibility of being used 
unjustly. 

[0016]When there are change of an individual's affiliation and movement of authority, it is necessary to 
delete the secret key which has already become unnecessary but, and in a company, the data once stored 
in a hard disk may also have a situation which has not disappeared thoroughly even if it eliminates. 
Therefore, also when abandonment of a key is not performed smoothly, it thinks. 

[001 7]A key showing a legal entity becoming an owner of a secret key in a company, i.e., the company, is 
desired in recent years. So to speak, such a legal entity key is equivalent to the seal of the conventional 
legal entity. Such a legal entity key is a thing of the character which each company member of the 
company which is the legal entity uses. However, in the realization technique of the present public-key 
crypto system on condition of only a specific individual using one secret key, it is not taken into 
consideration at all about the gestalt which uses one legal entity key by two or more persons. This means 
that the mechanism in which the representative of the person himself/herself (legal entity) will use one 
secret key if it puts in another way is not yet built. 

[001 8]this invention is made in order to solve above SUBJECT, and it comes out. the purpose is to build 
the server for a digital signature, in order to prevent unjust use certainly, when it is alike, it sets and an 
individual performs a digital signature. 

[0019] 

[Means for Solving the Problem]This invention relates to a server for a digital signature, and that it is 
characteristic in this invention has two or more secret keys in a point which may be used by two or more 
persons. In a Prior art, a secret key was owned and managed by one human being to the last. However, 
therefore, since structure which only one of them can use was built, there was a possibility of causing 
unauthorized uses (spoofing etc.) by a password being stolen as mentioned above. 
[0020]This invention provides a signature generating server which realizes a method with which two or 
more secret keys are used by two or more persons. Specifically, the following means are adopted. 
[0021]Message data whose this invention is an object of a digital signature first, An identifier of a user who 
demands said digital signature is inputted, said message data is signed using said user's secret key, and it 
has the following means in a digital signature generation server which outputs said message data after a 
signature. 

[0022]Namely, a secret key memory measure which this invention is the memory measure into which said 
user's secret key was registered beforehand, and outputs a secret key in which said user was registered 
based on said user's identifier, It is a digital signature generation server including a signature means which 
signs said message data using said secret key. 

[0023]This invention is a digital signature generation server, wherein said secret key memory measure 
permits that the same secret key is memorized to a different user's identifier. 

[0024]Said secret key memory measure of this invention is a digital signature generation server permitting 
that the same user owns two or more identifiers. 

[0025]A living body signature data memory measure which outputs living body signature data in which this 
invention is the memory measure into which said user's living body signature data was registered 
beforehand, and said user was registered based on said user's identifier, An inspection means which 
inspects whether input living body signature data which said user inputs is compared with living body 
signature data in which said user whom said living body signature data memory measure outputted was 
registered, and both characteristic quantity is in agreement, Only when it is judged that characteristic 



quantity of an implication and said signature means corresponds by said inspection means, it is a digital 
signature generation server using said acquired secret key and signing said message data. 
[0026]This invention is a digital signature generation server, wherein said living body signature data is data 
about a signature written by a user by hand. 

[0027]This invention is a digital signature generation server, wherein said living body signature data is data 
about said user's retina patterns. 

[0028]This invention is a digital signature generation server, wherein said living body signature data is data 
about said user's fingerprint. 

[0029]In the digital signature generation server according to claim 5 this invention, A conversion method 
from which said user who is said inputted living body signature data changes into image data data about a 
signature which wrote by hand, It is a digital signature generation server including an image data signature 
means which signs using said secret key, and an image data output means which outputs said signed image 
data to said image data. 

[0030]This invention is a digital signature generation server, wherein said secret key memory measure 
comprises an enternal memory means dismountable from this digital signature generation server. 
[0031]This invention comprises an enternal memory means with said secret key memory measure 
dismountable from this digital signature generation server, and said signature means is a digital signature 
generation server being constituted by said enternal memory means and one. 
[0032]This invention is a digital signature generation server, wherein said enternal memory means 
comprises an IC card. 
[0033] 

[Embodiment of the Invention]Hereafter, the suitable embodiment of this invention is described based on 
Drawings. 

[0034]The configuration block figure showing the composition of the digital signature generation server 10 
concerning this embodiment is shown in embodiment 1 drawing 1 . The digital signature generation server 10 
concerning this embodiment is a server which operates on a network, and is a server which signs to a 
predetermined document according to the demand from the outside. 

[0035]The input 22 of the digital signature generation server 10 of ********** contains a user's "ID", a 
user's "authentication dynamic signature data", and the "message data" the user wants to receive a 
signature, as shown in drawing 1. The digital signature generation server 10 signs "message data" by 
enciphering "message data" using the user's secret key. And "the enciphered message data (signed)" is 
outputted. 

[0036]Here, authentication dynamic signature data is what is called Biometrics individual specific data, such 
as data of the user's "a signature which wrote by hand", a fingerprint, retina patterns. In this embodiment, 
when those who want to use attestation, for example, do "a signature which wrote by hand" using a stylus 
pen etc. on the tablet with which the terminal is equipped, authentication dynamic signature data is 
inputted. 

[0037]Now, the "authentication dynamic signature data" of the input 22 of the digital signature generation 
server 10 is the dynamic signature data inputted when a user wanted to perform a digital signature. As 
mentioned above, the data etc. of that user's "a signature which wrote by hand" are used as this 
"authentication dynamic signature data" from the tablet of a terminal, etc. 

[0038]This digital signature generation server 10 has the management data base 12, and management of 
the secret key which an individual and its individual use is performed in this management data base 12 as 
shown in drawing 1. Thus, management of the secret key is intensively performed by the digital signature 
generation server 10. 

[0039]It being characteristic in this embodiment is that the not an individual but digital signature generation 
server 10 whose management of a secret key is the owner are carrying out (setting in the management 
data base 12). It becomes unnecessary to be able to carry out by centralizing management of a secret key 
and for an individual to manage the key of a complicated secret key by providing such a means. 
[0040]As shown in a figure, a user's "ID", a user's "registered dynamic signature data", and the "secret 



key" and ** that the user can use are stored in the management data base 12. Here, "registered dynamic 
signature data" is "signature which wrote by hand" data, and says the dynamic signature data beforehand 
registered into the above-mentioned management data base 12. The user registers the dynamic signature 
data of self into the management data base 12 beforehand. And when a user uses the digital signature 
generation server 10, he can perform easy proof of self certainly by performing the same signature as the 
"registered dynamic signature data" registered beforehand for example, on a tablet. 
[0041 ]In this embodiment, although "signature which wrote by hand" data was used, as mentioned above, 
as long as this dynamic signature data is data of a fingerprint, retina patterns, etc. which can specify the 
person himself/herself as Biometrics, what kind of thing may be sufficient as it. 
[0042] Operation , next operation of the digital signature generation server 10 are explained. 
[0043]If the input 22 which comprises a user's "ID" described until now, "authentication dynamic signature 
data", and "message data" is supplied, the digital signature generation server 10, First, the dynamic 
signature encryption key Management Department 16 reads the "registered dynamic signature data" 
registered to the user to whom the ID expresses from the management data base 1 2. As shown in drawing 
1 1 , the dynamic signature encryption key Management Department 1 6 gives "ID" to the management data 
base 12. 

[0044]Next, the dynamic signature encryption key Management Department 16 supplies the "registered 
dynamic signature data" obtained from the management data base 12, and the "authentication dynamic 
signature data" which is a part of inputs 22 to the dynamic identification-of-the-signature part 14 (refer to 

drawing 1 ). 

[0045]The dynamic identification-of-the-signature part 14 compares and compares the given "registered 
dynamic signature data" and "authentication dynamic signature data", and inspects whether the feature 
items are in agreement. As a result, the "authentication dynamic signature data" inputted as the 
"registered dynamic signature data" beforehand registered into the management data base 12 is in 
agreement about the feature items, When it is judged that it is Biometrics signature data to both identical 
persons, It judges that the demand of a digital signature is performed correctly (the digital signature is 
demanded by the regular user), and processing of the digital signature described later is performed in the 
digital signature generation server 10. 

[0046]If the "authentication dynamic signature data" inputted as the "registered dynamic signature data" 
beforehand registered into the management data base 12 on the other hand is not in agreement about the 
feature items and is not Biometrics signature data to an identical person, When judged in the dynamic 
identification-of-the-signature part 14 (refer to drawing 1 ), it judges that the demand of this attestation is 
a demand performed by the malfeasance, and the digital signature generation server 10 refuses the demand 
of attestation. Specifically, the dynamic signature encryption key Management Department 16 transmits the 
message of refusal to a user. 

[0047]Now, when the result of the purport that it is judged that the dynamic identification-of-the-signature 
part 14 is a just authentication demand has been transmitted to the dynamic signature encryption key 
Management Department 16, the dynamic signature encryption key Management Department 16 makes 
digital signature processing perform to the code operation part 18. That is, the code operation part 18 gives 
encryption by a secret key to message data. 

[0048]As shown in drawing 1 , the code operation part 18 receives the "message data" which is the "secret 
key" for using for encryption, and an object of encryption from the dynamic signature encryption key 
Management Department 16. In this embodiment, the code operation part 18 receives "not only message 
data" but "image data" as an object of encryption. And encryption (signature) of these "message data" 
and "image data" is performed in the code operation part 18. 

[0049]This "image data" is image data which expressed as an image the "authentication dynamic signature 
data" inputted by the user. "Authentication dynamic signature data" is digital data which expressed with 
the speed and the direction of a pen, the thrust of a pen, etc. the motion of the pen at the time of "a 
signature which wrote by hand" being written by the user, for example, and this "signature which wrote by 
hand" — as an image — a table — since data expresses that signature data (thrust etc. a table under 



digital data) with the form which is in sight of human being, the bottom's is image data reproduces a motion 
of the above-mentioned pen on two-dimensional paper, and it enabled it to grasp with human being's vision. 

[0050]In this embodiment, the Reason which has also enciphered the image data of such signature data is 
that there is also a demand of liking to display a signature into a text in the form which can actually be 
grasped with the naked eye. In this embodiment, although the image data was also enciphered in this way, 
encryption of this image data is not necessarily an indispensable matter for this invention. 
[0051]The code operation part 18 will output "the enciphered message data" and "the enciphered image 
data of a signature" which were obtained, if "message data" and "image data" are enciphered. 
[0052]The dynamic signature encryption key Management Department 16 returns "the enciphered message 
data" and "the enciphered image data of a signature" to a user. Signing easily is possible even if a user 
does not manage a secret key himself by this. Since it checked especially that he was the person 
himself/herself not only using ID but using Biometrics dynamic signature data in this embodiment, the 
signature which uses a secret key unjustly can be effectively prevented from being performed. 
[0053]The dynamic signature encryption key Management Department 16 returns a "return value" to a 
user, as shown in drawing 1 . This "return value" is a kind showing the result of a code operation of the 
code called a "return code" so to speak. 

[0054]that the feature items of the registered authentication data and authentication dynamic signature 
data which are registered about the person to whom ID expresses whether it is that the code operation 
was normally completed when a user inspected the value of this "return value" were not in agreement 
****** — etc. — ******** — detailed information can be acquired. 

[0055]As shown in drawing 1 , the dynamic signature encryption key Management Department 16 registers 
"the enciphered message data" into the recording data base 20, at the same time it returns "the 
enciphered message data" to a user. This is a database for recording to what kind of message the work of 
the digital signature was done by the demand of whom, and is for inspecting in detail whether there was any 
unauthorized use later. In this embodiment, the dedicated server for performing digital signature processing 
was prepared, and it decided to perform digital signature processing in this server altogether. Therefore, 
since digital signature processing is manageable unitary, those who performed the processing about all the 
digital signature processings, the time of processing, etc. are recordable on the above-mentioned recording 
data base 20. 

[0056]In this embodiment, each element which constitutes the digital signature generation server 10 is 
realized by the program. The dynamic signature encryption key Management Department 16, the dynamic 
identification-of-the-signature part 14, and the code operation part 18 grade are realized by the program 
which CPU of the computer which constitutes the digital signature generation server 10, and this CPU 
specifically execute. The management data base 12 and the recording data base 20 are realized from the 
database program which CPU and CPU execute, and the recording device of a hard disk etc. 
[0057]The contents of the database , next the contents of the table used with the above-mentioned 
management data base 12 are explained. 

[0058]The explanatory view showing the contents of two kinds of tables used with the above-mentioned 
management data base 12 is shown in drawing 2 . The personal information management table 12a is shown 
in drawing 2 (1), and the encryption key management table 12b is shown in drawing 2 (2). 
[0059]As shown in drawing 2 (1), the personal information management tables 12a are a user's "ID", and 
"registered dynamic signature data" and the table which stores the "key hash value." With this "key hash 
value", a secret key is changed into a hash value by a predetermined hash function, and this hash value is 
used in the encryption key management table 12b mentioned later. The hash value is used because search 
time will become long if it refers to the value of a secret key itself since the length of a secret key is 500 
bits - about 1000 bits as mentioned above. 

[0060]Now, in this embodiment, in order to recognize a user, the user's "ID" is used (refer to drawing 2 (1)). 
And in this embodiment, it permits that one user uses two or more ID. As a result, when one person has 
two or more posts, it enables one user to perform a different signature for every post. 



[0061]ID of plurality [ user / one ] being used for being characteristic in this embodiment is approving on a 
system. 

[0062]Since such a personal information management table 12a is used, according to this embodiment, one 
user can use two or more signatures properly, and can perform signature processing which is rich in 
convenience. 

[0063]In this embodiment, it permits that two or more users share one secret key. That is, it enables two or 
more persons to use one secret key together by assigning the same key hash value to a different person 
who has different ID. 

[0064]For example, two or more directors need to use the legal entity key mentioned above. In such a case, 
according to this embodiment, since two or more directors can share one legal entity key, the high digital 
signature system of convenience is realizable. 

[0065]The encryption key management table 12b is shown in drawing 2 (2). The "class" is indicated to be 
the "secret key" which uses the encryption key management table 1 2b for a signature with a "key hash 
value" as shown in this figure. A "key hash value" is a key hash value explained by drawing 2 (1) here, and 
a "class" is data used when the importance of a secret key is expressed and a key is managed. This class 
is not necessarily an indispensable matter for this invention. 

[0066]A "key hash value" is calculated according to "ID" which a user uses using the personal information 
management table 12a mentioned above. This "key hash value" is used as a key, when searching the 
contents of the encryption key management table 12b. When applicable "key hash value" is found out from 
the encryption key management table 12b, corresponding "secret key" can be obtained from the 
encryption key management table 12b. 

[0067]Thus, a "key hash value" plays a role of a key which connects the personal information management 
table 12a and the encryption key management table 12b. Therefore, in this embodiment, although the "key 
hash value" was used, if it corresponds with the secret key, it is also preferred to use a mere sequence 
number instead of a hash value. 

[0068]In this embodiment, the table normalized about ID, the table normalized about the secret key, and 
two kinds of tables of** are used, and an individual's management and management of the key are 
performed respectively separately independently. That is, when the persons using the digital signature 
generation server 10 concerning this embodiment increase in number, the personal information management 
table 12a is adjusted, when the kind of secret key decreases, what is necessary is to adjust only the 
encryption key management table 12b, and efficient management can be performed. 

[0069]However, it is enough if the registered dynamic signature data and the secret key corresponding to 
the ID from ID are called for as a function of the management data base 12. Therefore, it is also possible to 
unify the personal information management table 12a and the encryption key management table 12b, to 
make one table, and to perform processing about the management data base 12 on the one table. 
[0070]When the personal information management table 12a and the encryption key management table 12b 
are unified, a "key hash value" will be omitted and one table which has each item of a user's "ID", 
"registered dynamic signature data", a "secret key", and a "class" will be created. 
[0071]As stated above, it being characteristic in this embodiment is having formed the digital signature 
generation server 10 which manages intensively the secret key used for a digital signature. It becomes 
unnecessary for an individual to manage by himself the secret key which self owns by this. In this 
embodiment, since it permits that two or more persons share one secret key, i.e., two or more persons 
share one secret key, a legal entity key etc. can be used smoothly. Since one human being also permits 
owning two or more secret keys, a different digital signature for every post can be carried out. 
[0072]In the embodiment 2 above-mentioned embodiment 1, the secret key was performed in the 
management data base 12 in the digital signature generation server 10. However, that the secret key is 
managed intensively means that a possibility that all secret keys may be lost by a certain accident, or all 
secret keys may be stolen also exists. Therefore, storing the secret key itself in an external memory 
measure is also considered. 

[0073]And when employment of the digital signature generation servers 10, such as night, has stopped, for 



example, an external memory measure is removed from the digital signature generation server 10, and it is 
kept in a safe place. If it does in this way, the safety of a secret key can be raised more. 
[0074]Thus, the configuration block figure showing the composition of the digital signature generation 
server 50 at the time of storing a secret key in an external memory measure is shown in drawing 3 . 
[0075]The digital signature generation server 50 in this embodiment is the point of differing from the digital 
signature generation server 10 in the above-mentioned Embodiment 1 in that the secret key is stored in an 
external IC card. Since a secret key is stored in an IC card, as shown in drawing 3 , the digital signature 
generation server 50 is equipped with the IC card input/output device 58. 

[0076]Therefore, unlike the above-mentioned Embodiment 1, the management data base 52 has memorized 
the "device number" of the IC card in which not a "secret key" but the secret key is stored. 
[0077]Therefore, the dynamic signature encryption key Management Department 56 in this Embodiment 2 
supplies the "device number" to the IC card input/output device 58 instead of a "secret key." The IC card 
input/output device 58 supplies "message data" to the IC card which the "device number" specifies based 
on the supplied "device number." 

[0078]Using the secret key stored in the inside, IC card 62 which received supply of the "message data" 
enciphers message data, and outputs the enciphered message data outside. 

[0079]Thus, in this embodiment, since IC card 62 self has not only a memory measure but a calculating 
means, the code operation is performed by IC card 62 inside. As a result, the secret key of IC card 62 
inside has the feature that maintenance of secret of a secret key is performed more nearly thoroughly in 
order not to come from IC card 62 outside in essence. Thus, the secret key itself does not come out of an 
IC card, but an IC card only outputs the message data after a code operation (after a signature) outside. 
[0080]The code operation part 18 sets the digital signature generation server 50 in this Embodiment 2, 
without the point incorporated into IC card 62 inside, and the point that storage of a secret key is 
performed by IC card 62, and it differs from the digital signature generation server 10 in the above- 
mentioned Embodiment 1. Together with the point of difference to take, the management data base 52 of 
Embodiment 2 has memorized the "device number" of IC card 62 in which the "secret key" is stored 
instead of the "secret key." 

[0081]Except for the above points of difference, operation of the digital signature generation server 50 of 
Embodiment 2 is the same as that of the digital signature generation server 10 of the above-mentioned 
Embodiment 1 almost. 

[0082]Also in the digital signature generation server 50 of Embodiment 2 of operation , "authentication 
dynamic signature data", "message data", and ** are inputted as a user's "ID" like Embodiment 1 (refer to 
drawing 3). And with "ID", the dynamic signature encryption key Management Department 56 transmits to 
the management data base 52 among these, and "authentication dynamic signature data" the management 
data base 52, The registered dynamic signature data registered beforehand is outputted, and the "device 
number" which shows IC card 62 in which the secret key is stored is outputted. 

[0083]The dynamic signature encryption key Management Department 56 transmits the registered dynamic 
signature data received from the management data base 52, and the authentication dynamic signature data 
which the user inputted to the dynamic identification-of-the-signature part 54. The dynamic identification- 
of-the-signature part 54 performs the completely same operation as the above-mentioned dynamic 
identification-of-the-signature part 14, and returns the dynamic signature encryption key Management 
Department 56 a collated result. 

[0084]The dynamic signature encryption key Management Department 56 transmits "message data" and 
"image data" to the IC card input/output device 58. However, as mentioned above, the dynamic signature 
encryption key Management Department 56 transmits the "device number" which specifies IC card 62 in 
which the secret key is stored instead of the "secret key." The IC card input/output device 58 supplies 
the "message data" which should sign, and the "image data" which is image data to which a user 
expresses the signature which wrote by hand to IC card 62 to IC card 62 specified with the "device 
number." 

[0085]The explanatory view of IC card 62 is shown in drawing 4 . As shown in drawing 4 , IC card 62 also has 



a calculation function for performing a code operation while memorizing a secret key. IC card 62 enciphers 
the above "message data" and the "image data" which were inputted using the secret key stored in an 
inside. And IC card 62 transmits this "message data" and the "image data" that were enciphered, i.e., 
"message data" and the "image data" which performed the signature, to the dynamic signature encryption 
key Management Department 56. 

[0086]The processing after the signed "message data" etc. was transmitted to the dynamic signature 
encryption key Management Department 56 is completely the same as that of the digital signature 
generation server 10 in the above-mentioned Embodiment 1. That is, "the enciphered message data" is 
stored in the recording data base 60, and a "return value", "the enciphered message data", and "the image 
data of the enciphered signature" are outputted outside. 

[0087]The explanatory view showing the appearance of two tables included in the management data base 
52 in the contents book embodiment 2 of a database is shown in drawing 5. The personal information 
management table 52a is shown in drawing 5 (1), and the contents are the same as that of the personal 
information management table 12a in the above-mentioned Embodiment 1. Although the encryption key 
management table 52b is shown in drawing 5 (2), the contents have a different point from the encryption 
key management table 12b in the above-mentioned Embodiment 1. In this Embodiment 2, the "secret key" 
itself is not contained in the encryption key management table 52b, but the "IC card input/output device 
number" is stored instead of the "secret key" as shown in drawing 5 (2). By constituting such a table, as 
drawing 3 was described, the device number is passed to the dynamic signature encryption key 
Management Department 56. Also in this Embodiment 2, the personal information management table 52a 
and the encryption key management table 52b are combined by the hash value. 

[0088]In this Embodiment 2, as stated above, since the secret key was saved at the external IC card, it can 
put into practice more and management of a secret key can be performed. For example, it is possible to 
protect a secret key more certainly by sampling the IC card in which the owner of a secret key stores a 
self secret key from an IC card input/output device, and holding it by oneself, while the digital signature 
generation server 50 is not working. 

[0089]In this Embodiment 2, since IC card 62 inside was made to be equipped not only with the memory 
storage function of a secret key but with the function of a code operation, no data of a secret key itself is 
outputted outside from IC card 62. Therefore, it is possible to perform maintenance of secret of a secret 
key more powerfully. 

[0090]In a modification , in addition this Embodiment 2, although IC card 62 was used as an external memory 
measure, in addition to this, various enternal memory means can be used as a means to hold a secret key. 
For example, it is also preferred to use a floppy disk etc. 

[0091]However, when a floppy disk etc. are used as a means to hold a secret key, there is no calculation 
function in the floppy disk. Therefore, different consideration from the example shown by Embodiment 2 is 
needed. For example, it is preferred to carry out consideration as shown below. 

[0092]For example, it is equipping the digital signature generation server 50 with the code operation part 18 
like the above-mentioned Embodiment 1. However, the code operation part 18 will receive the "device 
number" rather than will receive a "secret key" like Embodiment 1. And from the floppy disk etc. which are 
shown with this "device number", the code operation part 18 reads a secret key, and performs a code 
operation using the read secret key. 

[0093]It is, storing in an external memory measure the encryption key management table used with the 
management data base 12 in the above-mentioned embodiment for example. If it puts in another way, the 
management data base 12 is constituted using an external memory measure. When the digital signature 
generation server 10 is not working by such composition, a secret key can be more certainly protected by 
sampling the enternal memory means from the digital signature generation server 10. 
[0094] 

[Effect of the Invention]As stated above, according to this invention, since it has a memory measure which 
memorizes a secret key and it becomes unnecessary for each user to manage a secret key individually, a 
digital authentication system with easy management of a secret key is provided. 



[0095]According to this invention, since two or more users can share one secret key, it becomes easy to 
carry out the so-called management of a legal entity key, and the effect that procuration signature etc. 
become easy is done so. 

[0096]According to this invention, since one user can own two or more secret keys, the effect that one 
user can use two or more digital signatures properly according to a post is done so. 

[0097]According to this invention, the inspection of being the person himself/herself can be written using 
living body signature data, a malfeasance can be prevented more certainly, and the digital signature system 
which is rich in safety can be provided. 

[0098]According to this invention, since the signature which writes by hand was used as living body 
signature data, the inspection of being the person himself/herself can be ensured. 
[0099]According to this invention, since retina patterns were used as living body signature data, the 
inspection of being the person himself/herself can be ensured. 

[0100]According to this invention, since the fingerprint was used as living body signature data, the 
inspection of being the person himself/herself can be ensured. 

[0101]According to this invention, since it signs and outputs also to the image data showing the signature 
which wrote by hand, the signature which wrote by the actual hand can be caught in an image. 
[0102]Since the secret key was held using the dismountable enternal memory means, the safety of a secret 
key can be raised more by removing an enternal memory means from a server and keeping it separately. 
[0103]If a signature means is constituted in this enternal memory means and one, since no secret key is 
outputted outside from that enternal memory means, it can raise the safety of a secret key more. 
[0104]This invention used the IC card as an enternal memory means. By providing a storage parts store 
and operation part in an IC card, a digital signature generative system is easily realizable. 



[Translation done.] 
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[Written Amendment] 

[Filing date]Heisei 9(1997) September 12 
[Amendment 1] 

[Document to be Amended]Description 
[Item(s) to be Amended]0043 
[Method of Amendment]Change 
[Proposed Amendment] 

[0043]If the input 22 which comprises a user's "ID" described until now, "authentication dynamic signature 
data", and "message data" is supplied, the digital signature generation server 10, First, the dynamic 
signature encryption key Management Department 16 reads the "registered dynamic signature data" 
registered to the user to whom the ID expresses from the management data base 1 2. As shown in drawing 
1 , the dynamic signature encryption key Management Department 1 6 gives "ID" to the management data 
base 12. The management data base 1 2 asks for the "registered dynamic signature data" and the "secret 
key" corresponding to the ID from ID, and returns them to the dynamic signature encryption key 
Management Department 16. 
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